Module 1: Getting Started with Windows Server 2019
Basic input/output system (BIOS)
-Program stored on hardware of a computer -used to start an OS after computer is powered on
Non-Volatile Memory Express (NVMe)
-SSD tech -fast transfer speeds within a small form factor
Editions
-Specific version of windows server -contains a unique set of features designed for a particular environment
Broadcast
-TCP/IP communication destined for all computers on a network
Media access control (MAC) address
-Unique 48-bit hexadecimal number that manufacturers add to each physical network interface they manufacture
Storage Spaces
-Windows server feature -allows you to create and manage volumes from multiple storage devices
Unified Extensible Firmware Interface (UEFI)
-a BIOS standard that is used on modern computers
Multitasking
-ability to run multiple processes simultaneously on a system
Azure active directory
-active directory services provided by Microsoft's Azure cloud
1-3e: Microsoft Hyper-V server 2019
-also a Hyper-V hypervisor -small footprint version that contain powershell -creating and managing virtual machines
1-3d: windows storage server 2019
-cannot be purchase directly from Microsoft -central storage center for data
cmdlets
-command within windows Powershell
Shell
-command-line interface
Docker
-common software -allows OS to host containers
Internet service providers (ISPs)
-company that provides internet access
logical processors
-component (or core) within a physical processor -acts as a standalone processor
Active Directory Certificate services
-component of active directory -provides centralized management of encryption certificates within a domain
Group Policy
-component of active directory -provides centralized management of windows computers within a domain
Windows subsystem for Linux (WSL)
-component of windows 10 and windows server 2019 -allows you to run Linux applications on windows kernel
Client
-computer on network -access resources on other computers
Server
-computer on network -share resources to other computers
Hyper-V Containers
-container provided a separate copy of windows server 2019 kernel via components provided by Hyper-V
Kernel
-core component of OS -executes processes on computer hardware
routers
-device capable of transferring packets from 1 network to another
Uninterruptible power supply (UPS)
-device contains battery storage -used to supply power to computers in event of a power outage
Transmission Control Protocol/Internet Protocol (TCP/IP)
-most common network protocol used on internet -provides for reliable communication
IP version 4 (IPv4)
-most common version of IP used on internet -uses a 32bit addressing scheme organized into different classes
Computer name
-name that you specify on a windows computer -used to generate computer's host name and NetBIOS name
Demilitarized Zone (DMZ)
-network -uses network-based firewalls to protect access to servers that are contained within
peer-to-peer networking
-network design -each computer manages access to its own resource independently
Local area networks (LANs)
-network in which computers are all in close physical proximity
Proxy servers
-network servers that accepts internet requests from other computers on same LAN and obtains desired resource on their behalf
Perimeter network
-network that uses network based firewalls to protect access to servers that are contained within
Resilient File System (ReFS)
-new file system used on windows server systems -additional reliability features -support for storage spaces
Classless interdomain routing (CIDR) notation
-notation that is often used to represent an IP address and its subnet mask
Advanced threat protection (ATP)
-optional component of Microsoft defender -provide cloud-based inspection for malware and network traffic
Server core app compatibility feature on demand (FOD)
-optional package -installed on server core to provide additional frameworks required for certain applications
Host ID
-portion of an IP address that denotes host
Network ID
-portion of an IP address that denotes network
ANDing
-process by which binary bits are compared to calculate network -host IDs from an IP address and subnet mask
Redundant Array of Independent Disks (RAID)
-process of combining storage spaces of several hard disk drives into 1 larger, logical storage unit
Authentication
-process of proving your identity to a computer -with username and password
Sandboxing
-process of running separate web apps within separate containers
thin provisioning
-process of using a virtual hard disk file -dynamically expands as needed -up to maximum size
thick provisioning
-process of using a virtual hard disk file that has a fixed size
protected process
-process that is isolated from other processes on a system
Capacity Planning
-process used to determine hardware and software requirements based on current and future needs of users within an organization
Failover
-process whereby a server within a cluster assumes -Role of another server within cluster that has failed
Clustering
-process whereby several different servers can respond to client requests as a single entity
Single sign-on
-process whereby users authenticate once a domain controller to prove their identity to other computers within same domain
Physical processor
-processor that is represented by a single piece of hardware
Internet Control Message protocol version 6 (ICMPv6)
-protocol -used by computers to obtain an IPv6 configuration from a router on network
Dynamic Host configuration protocol (DHCP)
-protocol -used to automatically obtain IP configuration from a server on network
Internet Control Message Protocol (ICMP)
-protocol used on internet -provide error messages and network related info
Teredo
-protocol used to encapsulate IPv6 packets with an IPv4 network
Unicast
-IP communication that is destined for a single computer
Active Directory
-Microsoft components and software -provide single sign-on -centralized management of computers on a network
Host Operating System
-OS used to host a type 2 hypervisor
Packets
-Package of data formatted by a network protocol
Virtualization
-Process of running several separate OS concurrently on a single computer
Privileged mode
-mode that is given highest priority on a system
1-2: Windows server 2019 features
-Active Directory -Security -Volume and filesystem features -Performance and reliability -Administration tools -Small footprint installation options -Hybrid cloud features -Linux application support
Windows Containers
-Components allow docker to provide containers on windows server 2019 OS
Rufus
-Free software program -used to write contents of an ISO image to a bootable USB flash drive
AMD-V
-Hardware-assisted virtualization support -available in some AMD processors
Intel VT
-Hardware-assisted virtualization support -available in some Intel Processors -(for Intel)
Domain Name Space (DNS)
-Hierarchical namespace -used for host names
Shielded Virtual Machines
-Hyper-V feature -allows virtual machines hard disk files to be encrypted
Generation 2 virtual machine
-Hyper-V virtual machine emulates newer hardware -performs faster than Gen1 virtual machine
Generation 1 virtual machine
-Hyper-V virtual machine that emulates older hardware
default gateway
-IP address of router on network -used to send packets to remote networks
Loopback IP address
-IP address that refers to local computer only
Networks
-2 or more computers -together via network media -able to exchange info
Keyboard-video-mouse (KVM) switch
-device often used on server racks -allows single keyboard, mouse, and monitor to be shared by all of rackmount servers
Hybrid cloud
-environment that integrates services that run on-premises to services within cloud
Storage tiers
-feature allows an OS to store more frequently accessed data on faster storage devices within a volume that spans multiple storage devices
Storage pinning
-feature allows you to specify physical location of different types of data within a volume that spans multiple storage devices
nested virtualization
-feature of Hyper-V -allows you to run virtual machines within other virtual machines
Encrypting File System (EFS)
-feature of NTFS -allows for encryption of individual files and folders
Checkpoints/Snapshots
-feature of hypervisors -allows you to restore a virtual machine to a previous point in time
Internet Explorer Enhanced Security Configuration (IEESC)
-feature on windows server -prevents internet explorer web browser from connecting to websites that are not within its trusted sites list
Azure Backup
-feature that allows you to backup on-premises data to Microsoft's Azure cloud
Azure update management
-feature that allows you to manage windows updates from Microsoft's Azure cloud
Azure site recovery
-feature that allows you to provide services within Microsoft's Azure cloud -in the event of an on-premises server failure
-Automatic Private IP addressing (APIPA)
-feature that automatically configures a network interface -using an IPv4 address on 169.254.0.0 network, or an IPv6 address on FE80 network
Windows server 2019 basic security features
-file and folder permissions -security policies -encryption of data -event auditing -various authentication methods -server management and monitoring tools
data deduplication
-file system feature that ensures duplicate files -only stored once on physical storage device
ISO image file
-file that stores a virtual filesystem -written to a removable media device such as a DVD or USB flash drive
Journaling
-filesystem feature -allows for quick file recovery following a power failure
Burnaware
-free software program -used to write contents of an ISO image to a DVD
Microsoft Management Console (MMC)
-graphical management console -provides a series of snap-ins -used to manage components of windows
Sever manager
-graphical management tool included within windows server
Hyper-V manager
-graphical tool -used to install, manage, and interact with Hyper-V virtual machines
Trusted Platform module (TPM)
-hardware component within a computer BIOS -contains encryption keys and related info
Second level address translation (SLAT)
-hardware-assisted virtualization tech -available in modern processors that coordinates use of memory between virtual machines and physical memory
Fully Qualified Domain Names (FQDNS)
-host name -follows DNS naming convention
Type 2 Hypervisors
-hypervisor runs as a program within an OS -common type 2 hypervisors: VMware workstation, Oracle virtual box and Parallels workstation
Type 1 hypervisor
-hypervisor runs directly on computer hardware -common type 1 hypervisor: VMware ESX/ESXi and Linux KVM
Boot protocol (BOOTP)
-legacy protocol -used to automatically obtain IP configuration from a server on network
User datagram protocol/internet Protocol (UDP/IP)
-less reliable -faster version of TCP/IP protocol
Client access License (CAL)
-license for a network connection to a server
Multiple Activation Key (MAK)
-license key -can be activated on internet for a set number of windows computers
Generic volume license key (GVLK)
-license key -purchased for use within an organization -often embedded into installation media
Domain
-logical grouping of computers on a network -provides centralized management and single sign-on
Workgroup
-logical grouping of computers on network -Implement peer-to-peer networking
Windows server configuration wizard (sconfig.cmd)
-management tool included within server core -used to manage server settings
1-3a: Windows Server 2019 Essentials Edition
-maximum users: 25 -Licensing: per server -maximum memory: 64 GB -maximum processor sockets: 2 -can join domain: only to enable migration -maximum file sharing connections: 16.8 million -maximum remote access connections: 50 -Hyper-V: no -Containers: no -Hyper-V containers: no
1-3b: windows server 2019 standard edition
-maximum users: Limited by number of CALs -Licensing: Per processor core -maximum memory: 24 TB -maximum processor sockets: 64 -can join domain: yes -maximum file sharing connections: 16.8 million -maximum remote access connections: unlimited -Hyper-V: yes (2 virtual machines) -Containers: yes (unlimited) -Hyper-V containers: yes (up to 2)
1-3c: windows server 2019 Data center edition
-maximum users: Limited by number of CALs -Licensing: Per processor core -maximum memory: 24 TB -maximum processor sockets: 64 -can join domain: yes -maximum file sharing connections: 16.8 million -maximum remote access connections: unlimited -Hyper-V: yes (unlimited virtual machines) -Containers: yes (unlimited) -Hyper-V containers: yes (unlimited)
small footprint
-minimal OS installation
1U servers
-rack mount server height of 1.75 inches -larger rackmount servers have a height that is a multiple of a 1U server -"U" is for unit -2 hard drives and 2 processors
IP version 6 (IPv6)
-recent version of IP -used by some hosts on internet -128-bit addressing scheme
Active Directory-based Activation role
-role that can installed on a domain controller -provide automatic activation for computers -joined to same active directory domain
subnet mask
-series of 4 8-bit numbers that determine network -host portions of an IP addresses
Internet Protocol (IP) address
-series of 4 8-bit numbers that represent a computer on a network
Blade servers
-server can be housed within a single rackmount server
Cloud servers
-server located within a datacenter on internet
On-Premises Servers
-server located within an organization
Domain Controllers
-server within a domain that authenticates other computers -provides for centralized management
Windows server Azure network adapter
-service that allows you to integrate on-premises servers with servers -services hosted within Microsoft's azure cloud
Key management services (KMS)
-service that runs on a windows server computer -allows for activation of other computers on an organization's network
Protocol
-set of rules of communication -used between computers on a network
Kubernetes
-set of software components -used to centrally manage containers within a cloud or on-premises environment
Windows Management Instrumentation (WMI)
-set of specifications and frameworks -used to view ad manage windows OS settings
Windows Powershell
-shell included within windows OS -scripting features -used to perform system management -created in 2006
Octets
-single -8-bit section of an IPv4 address
Threads
-single unit of execution within a process
Nano server
-small footprint windows server installation option -provides a bare minimum set of services for running web apps and a small number of server services
server core
-small footprint windows server installation option -does not provide a graphical desktop
Hypervisor
-software component -provides for virtualization
virtual processors
-software-defined logical processor within a virtual machine
Storage area network (SAN)
-storage array -accessed by 1 or more servers on a server rack
Solid state disk (SSD)
-storage device -comprised of non-volatile memory chips
Containers
-subset of an OS -provides unique service on network
Microsoft Azure
-suite of cloud services -provided by Microsoft
attack surface
-sum total of all avenues -attackers can potentially use to obtain access to a system
Network address translation (NAT)
-tech that allows a router to obtain internet resources on behalf of computers on network
Software Defined Networking (SDN)
-term that refers to software components and frameworks -provides network functionality for virtual machines and containers
Internet of Things (IoT)
-term that refers to worldwide collection of small internet connected devices
Powershell scripts
-text file with a .ps1 extension -contains powershell cmdlets and control structures for later execution
Rackmount servers
-thin form factor -house server hardware -installed in a server rack -may contain different OS
New Technology File System (NTFS)
-traditional file system used on windows server systems
Hyper-V
-type 1 hypervisor created by Microsoft
Preemptive multitasking
-type of multitasking in which each process is isolated from other processes on system
NetBIOS name
-unique name for a windows computer -broadcast to other computers on LAN
Guest operating system
-virtual OS that is run on a hypervisor
Virtual Machines
-virtual OS that is run on a hypervisor
Internet Information services (IIS)
-web server software included in windows server
Windows admin center
-web-based graphical management tool available for windows server
Windows server catalog
-website that lists hardware devices -supported by windows OS
Storage Replicas
-window server feature -allows you to replicate data between different windows server systems
Desired state Configuration
-windows feature that allows you to configure computers based on a template
Storage Spaces Direct
-windows server feature -allows combined storage within a cluster to be made available as a single volume to users on netwrork
Storage Migration Service
-windows server feature -allows you to move data between servers and the cloud
Cloud
-worldwide collection of publicly accessible servers on internet